smokeloader | 3ccf610d8d4e2601cab43f42f754becaa847e7db8ffb94d6eccaf04a260d7080 | Triage

Sharing

General

Target

3ccf610d8d4e2601cab43f42f754becaa847e7db8ffb94d6eccaf04a260d7080
Size

179KB
Sample

240521-p22k6see4w
MD5

34225eb284b3dc0e3a38f3c90e281ee4
SHA1

52a8946bcf9f1824d1d29a4d01b787efb050b859
SHA256

3ccf610d8d4e2601cab43f42f754becaa847e7db8ffb94d6eccaf04a260d7080
SHA512

dde4402c68a4d530bc0698f024707666f575bc4bb0bd01029690bc8392987081b6747423c558e11f99c516f668198ac8ca343f06e87b48b8b963c416e2285947
SSDEEP

1536:Gco3jtbC7IX1LeoJPNcmBbGHz9wag5xRxv0dQNIsY6rwe5HUTjafuKH:CFrTcmWz9FgrRxvYatrwe5

Score

10^/10

smokeloader sel2 backdoor trojan

Malware Config

Extracted

Family

smokeloader

Botnet

sel2

Targets

- Target
  
  3ccf610d8d4e2601cab43f42f754becaa847e7db8ffb94d6eccaf04a260d7080
- Size
  
  179KB
- MD5
  
  34225eb284b3dc0e3a38f3c90e281ee4
- SHA1
  
  52a8946bcf9f1824d1d29a4d01b787efb050b859
- SHA256
  
  3ccf610d8d4e2601cab43f42f754becaa847e7db8ffb94d6eccaf04a260d7080
- SHA512
  
  dde4402c68a4d530bc0698f024707666f575bc4bb0bd01029690bc8392987081b6747423c558e11f99c516f668198ac8ca343f06e87b48b8b963c416e2285947
- SSDEEP
  
  1536:Gco3jtbC7IX1LeoJPNcmBbGHz9wag5xRxv0dQNIsY6rwe5HUTjafuKH:CFrTcmWz9FgrRxvYatrwe5
Score

10^/10

smokeloader sel2 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloadersel2backdoortrojan

behavioral2

smokeloadersel2backdoortrojan